
2-Way SSL in Apigee X: A Beginner's Guide to Mutual TLS (mTLS)
APIs power almost everything we use today—from mobile banking and online shopping to healthcare...
Tag archive

APIs power almost everything we use today—from mobile banking and online shopping to healthcare...
Run a tiny lab CA, sign a server cert and a client cert, then watch a -Verify server accept the client that presents a certificate and reject the one that doesn't — with a 'certificate required' TLS alert.
Introduction to the Authentication Model Design In the architecture of a Multi-Cloud...
A PKCS#12 encrypted with AES-256, imported successfully by certutil, but ECDSA unusable in Edge. The CryptoAPI vs CNG routing trap and the MS KSP attribute fix.
A single TLS port serving three hosts via SNI with different ClientAuth levels. Plus the session cert binding pattern to block cookie replay attacks.
tls.Config.VerifyConnection only runs at handshake. A client on keep-alive after revocation keeps serving. Double-gate pattern and CRL hot-reload with monotonic check.
Microservices communicate over the network dozens or hundreds of times per second. Without mutual...
Introduction to SSL/TLS and mTLS Securing HTTP communication is no longer optional—it’s...
Executive Summary The Mongoose network library, integral to the operation of millions of...
Introduction to PKI, CA, and mTLS Securing a homelab environment requires a deep...
War Story: How a Faulty Istio 1.23 mTLS Config Broke Cross-Region Traffic for 2M Users in...
In 2024, 72% of Kubernetes outages traced to misconfigured service meshes or networking layers, but...